S
Posted 6 hours ago
Governance, Risk and Compliance Analyst II
StubHubGovernance, Risk and Compliance Analyst II
Perks & benefits
CommissionHealth InsurancePaid Leave
Requirements
2+ years GRC experience, SOC 2 review experience, SOX compliance experience, IT Audit experience, e-discovery experience, NIST CSF/PCI DSS knowledge
Skills
ComplianceAudit
About the role
Responsibilities
- Oversee and manage the vendor risk management program through risk assessments and optimization of intake processes
- Monitor and manage the IT Security risk register
- Perform evidence collection and quality assurance of IT and Security controls
- Manage the GRC request queue and assist other teams with queries
- Build and manage user awareness training campaigns
- Assist Legal with contract reviews for technology vendors
- Conduct e-discovery searches in Purview, Google Vault, or Slack
- Collaborate with cross-functional teams to execute Information Security and GRC strategies
- Document risks and controls identified during third-party assessments and audits
- Ensure PCI compliance by overseeing scans and working with QSA during recertification
- Contribute to the SOX Program by owning the User Recertification process
- Perform continuous checks on access management to mitigate risks
- Provide inputs to the global risk framework based on new threats and vulnerabilities
Requirements
- 2+ years of experience in Information Security Governance, Risk and Compliance
- Prior experience performing SOC 2 reviews
- Experience with SOX compliance processes
- Experience using MS or Google productivity suites
- Experience leveraging AI to increase productivity
- Experience conducting or being part of IT Audits
- Experience fulfilling e-discovery requests
- Experience creating and updating company policies, procedures, and standards
- Knowledge of NIST CSF, SOX security frameworks, and PCI DSS standards
- Strong analytical, negotiation, and stakeholder management skills
- Strong verbal and written communication skills
Preferred Qualifications
- Experience with Microsoft’s Purview Compliance Portal
- Operational experience applying risk frameworks to cloud, on-prem, and DevOps environments
- Familiarity with change management processes
About the Company
StubHub is the world’s leading marketplace to buy and sell tickets to any live event, anywhere. Through StubHub in North America and viagogo, our international platform, we service customers in 195 countries.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeGovernance, Risk and Compliance Analyst II
StubHub · New York
